[99395] in RedHat Linux List
Re: Keeping certain users out....
daemon@ATHENA.MIT.EDU (dsb3)
Sat Nov 14 01:18:05 1998
Date: Sat, 14 Nov 1998 00:16:16 -0600 (CST)
From: dsb3 <dsb3@earthlink.net>
To: Jeremy Domingue <jer@cybersurfers.net>
cc: redhat-list@redhat.com
In-Reply-To: <000301be0f93$641290a0$d36df5d0@speedfreak.cybersurfers.net>
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
On Fri, 13 Nov 1998, Jeremy Domingue wrote:
>I was curious if there is a way to selectively deny telnet access to users
>that exist in the password file without disabling the account? For example,
>I run mail and radius services which I want the user to be able to access,
>but do not want to give the same user telnet login access.... how can I
>accomplish this?
>
to deny shell access, set their shell (the field in /etc/passwd, changable
through 'chsh' command) to something like /bin/false
their password is still present for pop daemons to see, but telnet
sessions will fail. depending on how /bin/false is defined elsewhere
other services may or may not work. worth testing on a single user before
propogating through the system ...
-dave
--
| oOOooO /
--| oOobodoO / dsb3@earthlink.net
--| ooOoOo /
| II / Kernel Panic: /dev/brain is on fire.
| II / MD5: 13aa1b8724ce1885cd9e7cad9b2eb9ba
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com http://archive.redhat.com
To unsubscribe: mail redhat-list-request@redhat.com with
"unsubscribe" as the Subject.
